Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
coreftp core ftp 2.0 vulnerabilities and exploits
(subscribe to this query)
2.6
CVSSv2
CVE-2022-22899
Core FTP / SFTP Server v2 Build 725 exists to allow unauthenticated malicious users to cause a Denial of Service (DoS) via a crafted packet through the SSH service.
Coreftp Core Ftp 2.0
4
CVSSv2
CVE-2022-22836
CoreFTP Server prior to 727 allows directory traversal (for file creation) by an authenticated attacker via ../ in an HTTP PUT request.
Coreftp Core Ftp
Coreftp Core Ftp 2.0
5
CVSSv2
CVE-2020-19595
Buffer overflow vulnerability in Core FTP Server v2 Build 697, via a crafted username.
Coreftp Core Ftp 2.0
5
CVSSv2
CVE-2019-9649
An issue exists in the SFTP Server component in Core FTP 2.0 Build 674. Using the MDTM FTP command, a remote attacker can use a directory traversal technique (..\..\) to browse outside the root directory to determine the existence of a file on the operating system, and its last m...
Coreftp Core Ftp 2.0
1 EDB exploit
5
CVSSv2
CVE-2019-9648
An issue exists in the SFTP Server component in Core FTP 2.0 Build 674. A directory traversal vulnerability exists using the SIZE command along with a \..\..\ substring, allowing an malicious user to enumerate file existence based on the returned information.
Coreftp Core Ftp 2.0
1 EDB exploit
5
CVSSv2
CVE-2018-20658
The server in Core FTP 2.0 build 653 on 32-bit platforms allows remote malicious users to cause a denial of service (daemon crash) via a crafted XRMD command.
Coreftp Core Ftp 2.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started